new ids alert type and configuration

2026-05-10 00:42:14 +00:00 · 2019-04-04 11:02:01 +02:00 · 2019-04-04 11:02:01 +02:00 · 96954bdabb
commit 96954bdabb
parent 3bb830d23e
11 changed files with 30 additions and 4 deletions
--- a/scripts/lua/modules/alert_utils.lua
+++ b/scripts/lua/modules/alert_utils.lua
@ -897,6 +897,7 @@ function formatRawUserActivity(record, activity_json)
        elseif k == "remote_to_remote_alerts" then pref_desc = i18n("prefs.toggle_remote_to_remote_alerts_title")
        elseif k == "mining_alerts" then pref_desc = i18n("prefs.toggle_mining_alerts_title")
        elseif k == "host_blacklist" then pref_desc = i18n("prefs.toggle_malware_probing_title")
+        elseif k == "ids_alerts" then pref_desc = i18n("prefs.toggle_ids_alert_title")
        elseif k == "device_protocols_alerts" then pref_desc = i18n("prefs.toggle_device_protocols_title")
        elseif k == "alerts.device_first_seen_alert" then pref_desc = i18n("prefs.toggle_device_first_seen_alert_title")
        elseif k == "alerts.device_connection_alert" then pref_desc = i18n("prefs.toggle_device_activation_alert_title")
--- a/scripts/lua/modules/lua_utils.lua
+++ b/scripts/lua/modules/lua_utils.lua
@ -2629,6 +2629,7 @@ function getFlowStatus(status, flowstatus_info, alert, no_icon)
   elseif(status == 18) then res = warn_sign..formatElephantFlowAlert(flowstatus_info, false --[[ remote 2 local --]])
   elseif(status == 19) then res = warn_sign..formatLongLivedFlowAlert(flowstatus_info)
   elseif(status == 20) then res = warn_sign..i18n("flow_details.not_purged")
+   elseif(status == 21) then res = warn_sign..i18n("flow_details.ids_alert")
   end

   return res
--- a/scripts/lua/modules/prefs_menu.lua
+++ b/scripts/lua/modules/prefs_menu.lua
@ -235,6 +235,9 @@ local menu_subpages = {
    }, toggle_malware_probing = {
      title       = i18n("prefs.toggle_malware_probing_title"),
      description = i18n("prefs.toggle_malware_probing_description", {url=ntop.getHttpPrefix() .. "/lua/admin/edit_category_lists.lua"}),
+    }, toggle_ids_alerts = {
+      title       = i18n("prefs.toggle_ids_alert_title"),
+      description = i18n("prefs.toggle_ids_alert_description"),
    }, toggle_device_protocols_alerts = {
      title       = i18n("prefs.toggle_device_protocols_title"),
      description = i18n(ternary(have_nedge, "prefs.toggle_device_protocols_description_nedge", "prefs.toggle_device_protocols_description"), {url=getDeviceProtocolPoliciesUrl()}),
--- a/scripts/lua/modules/tracker.lua
+++ b/scripts/lua/modules/tracker.lua
@ -66,6 +66,7 @@ local function tracker_filter_pref(key)
     k == "remote_to_remote_alerts" or
     k == "mining_alerts" or
     k == "host_blacklist" or
+     k == "ids_alerts" or
     k == "device_protocols_alerts" or
     k == "alerts.device_first_seen_alert" or
     k == "alerts.device_connection_alert" or